PwC
Website:
pwc.com
Job details:
At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. In cybersecurity incident management at PwC, you will focus on effectively responding to, and mitigating, cyber threats, maintaining the security of client systems and data. You will be responsible for identifying, analysing, and resolving security incidents to minimise potential damage and protect against future attacks.
Focused on relationships, you are building meaningful client connections, and learning how to manage and inspire others. Navigating increasingly complex situations, you are growing your personal brand, deepening technical expertise and awareness of your strengths. You are expected to anticipate the needs of your teams and clients, and to deliver quality. Embracing increased ambiguity, you are comfortable when the path forward isn’t clear, you ask questions, and you use these moments as opportunities to grow.
Skills
Examples of the skills, knowledge, and experiences you need to lead and deliver value at this level include but are not limited to:
- Respond effectively to the diverse perspectives, needs, and feelings of others.
- Use a broad range of tools, methodologies and techniques to generate new ideas and solve problems.
- Use critical thinking to break down complex concepts.
- Understand the broader objectives of your project or role and how your work fits into the overall strategy.
- Develop a deeper understanding of the business context and how it is changing.
- Use reflection to develop self awareness, enhance strengths and address development areas.
- Interpret data to inform insights and recommendations.
- Uphold and reinforce professional and technical standards (e.g. refer to specific PwC tax and audit guidance), the Firm's code of conduct, and independence requirements.
________________________________________________________________
Job Summary
We are seeking an experienced
Azure Cloud Security senior Analyst with a strong background in the
Microsoft Azure ecosystem and
cybersecurity operations. The ideal candidate will be responsible for implementing, monitoring, and enhancing security controls across Azure environments. This role focuses on cloud infrastructure protection, vulnerability management, risk reduction, and remediation coordination using Microsoft Defender and related Azure security tools.
Minimum Degree Required
Bachelor’s Degree
Minimum Year(s) Of Experience
- 5 - 7 years of relevant experience for Senior Associate in cloud security, Azure administration, or cybersecurity operations.
Certification(s) Preferred
- SC-200: Microsoft Security Operations Analyst
- AZ-500: Microsoft Azure Security Engineer Associate
Key Responsibilities
Cloud Security Operations
- Manage and monitor Microsoft Azure security tools, including Defender for Cloud, Defender for Servers, and Azure Security Center.
- Conduct continuous risk assessments and security posture evaluations to identify misconfigurations, vulnerabilities, and compliance gaps.
- Coordinate and execute remediation plans in collaboration with application, infrastructure, and DevOps teams.
- Develop and maintain risk burndown dashboards, ensuring visible progress toward reducing identified risks.
Vulnerability Management
- Perform regular vulnerability scans of Azure workloads using integrated tools (Microsoft Defender, Qualys, Tenable, etc.).
- Analyze vulnerability findings and provide prioritized remediation guidance to technical teams.
- Track and report vulnerability closure rates and maintain metrics related to patch compliance and risk reduction.
- Collaborate with security governance teams to align vulnerability management activities with enterprise frameworks.
Security Monitoring & Incident Response
- Integrate security alerts into SIEM platforms (e.g., Microsoft Sentinel) for threat monitoring and incident response.
- Investigate and triage cloud security incidents and support root cause analysis and containment actions.
- Recommend continuous improvements to Azure security configurations and monitoring use cases.
Education And Experience
- Bachelor’s degree in computer science, Information Security, or related field (or equivalent experience).
- Strong knowledge of the Microsoft Azure ecosystem, including governance, resource management, and network security concepts.
- Hands-on experience with Microsoft Defender for Cloud, Microsoft Defender for Servers, Azure Security Center, and Azure Policy.
- Working knowledge of vulnerability management tools and processes (e.g., Qualys, Tenable, Defender, Rapid7).
- Familiarity with risk remediation planning, burndown tracking, and security metrics/reporting.
- Solid understanding of identity and access management (IAM), Azure RBAC, and least privilege principles.
- Understanding of Azure networking, encryption, key vaults, and storage security.
- Strong analytical, communication, and stakeholder management skills.
Click on Apply to know more.